infojet

<<<   <<>>

See the links below for current IT Alerts and useful user Tips/guides

US-CERT/NCAS(National Cyber Awareness System) Main Page

CERT Vulnerability Notes Database at the Carnegie Mellon University Software Engineering Institute







NATIONAL VULNERABILITY DATABASE-NIST

NVD Dashboard

CWE-Common Weakness Enumeration-Mitre

National Security Agency (NSA)-Cybersecurity

Mitre ATT&CK Framework

OWASP web app security checker

US-CERT/NCAS(National Cyber Awareness System) Main Page

CISA Cybersecurity-Combating Cybercrime

CISA Cyber Eessentials

CISA National Cyber Awareness System (NCAS)



NIST SMALL BUSINESS CYBERSECURITY CORNER

CISA - Resources for Small and Midsize Businesses (SMB)

US Small Business Administration (SBA) Cybersecurity for Small Businesses(training)



US Small Business Administration (SBA) Cybersecurity for Small Businesses(training)(direct)



US SBA Cybersecurity resources



FINRA cyber security







SEC cyber security





CISA main (US-CERT-computer emergency readiness team)





Ready.gov (Cyber security)





US Secret Service Cyber security investigations





FTC cyber security







FTC Cyber security for Small Business





US Dept. of Commerce, Cyber security for Small Business-10 tips







US FCC Small business cyber security



















Palo Alto Networks (Enterprise Security)



PurpleSec cybersecurity

ATT Cybersecurity



PurpleSec cybersecurity

Cisco Cybersecurity



















CERT Recently Published Vulnerability Notes
CERT publishes vulnerability advisories called "Vulnerability Notes." Vulnerability Notes include summaries, technical details, remediation information, and lists of affected vendors. Many vulnerability notes are the result of private coordination and disclosure efforts.
Last updated 2021-01-22T19:34:06.810659+00:00
Recent Vulnerabilities
DHS National Cyber Security Division_US Cert_National Vulnerability Database (Search form)

(1) VU#434904: Dnsmasq is vulnerable to memory corruption and cache poisoning
(2) VU#843464: SolarWinds Orion API authentication bypass allows remote command execution
(3) VU#429301: Veritas Backup Exec is vulnerable to privilege escalation due to OPENSSLDIR location
(4) VU#815128: Embedded TCP/IP stacks have memory corruption vulnerabilities
(5) VU#724367: VMware Workspace ONE Access and related components are vulnerable to command injection
(6) VU#231329: Replay Protected Memory Block (RPMB) protocol does not adequately defend against replay attacks
(7) VU#760767: Macrium Reflect is vulnerable to privilege escalation due to OPENSSLDIR location
(8) VU#208577: Chocolatey Boxstarter is vulnerable to privilege escalation due to weak ACLs
(9) VU#114757: Acronis backup software contains multiple privilege escalation vulnerabilities
(10) VU#490028: Microsoft Windows Netlogon Remote Protocol (MS-NRPC) uses insecure AES-CFB8 initialization vector





Tweets by @USCERT_gov



Search the NIST NVD for Vulnerabilities
Enter vendor, software, or keyword or press Go without entering any search terms to get all recent vulnerabilies from any vendor


WordPress specific vulnerabilities in NIST NVD

Drupal specific vulnerabilities in NIST NVD







INFOJET HOME



FBI Internet Crime Complaint Center (IC3.gov)(file an Internet crime complaint Online)

US-CERT DHC Homepage

FBI

DHS(US Dept of Homeland Security)